$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/1930A6C2DE1411EA9309134EC4F9AE02.roa File: 1930A6C2DE1411EA9309134EC4F9AE02.roa (raw, json) Hash identifier: 3wvmSVm24Be4PT+QoB6fmiVi8khIAb17IJdvXSMd/Sk= Subject key identifier: 5F:E9:A3:08:95:4A:EC:24:EB:BE:B8:E0:29:88:78:A0:FB:E0:65:15 Certificate issuer: /CN=A91620E0/serialNumber=FD3B4EF8F79B0AE127E71E4B6C1869D81B22E880 Certificate serial: 11A8 Authority key identifier: FD:3B:4E:F8:F7:9B:0A:E1:27:E7:1E:4B:6C:18:69:D8:1B:22:E8:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/1930A6C2DE1411EA9309134EC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:04:27 +0000 ROA not before: Tue 02 Dec 2025 18:49:51 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 64049 IP address blocks: 49.45.4.0/24 maxlen: 24 49.45.5.0/24 maxlen: 24 2405:200:900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.crl rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4520 (0x11a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=FD3B4EF8F79B0AE127E71E4B6C1869D81B22E880 Validity Not Before: Dec 2 18:49:51 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a48dba-77cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d1:44:8f:4d:12:9b:2a:1f:f3:02:f6:00:5a: 02:b8:ef:c3:8b:97:ff:5b:0e:29:0d:a2:22:b4:ac: ae:a1:06:07:fb:c2:5b:6a:e3:35:3c:d0:d9:0c:88: 32:67:f0:a0:45:6e:40:79:f2:5d:66:d7:4d:7d:f3: 6c:bf:ea:ee:97:ac:0d:36:5c:57:a5:e5:0a:4b:39: 96:5b:b4:9d:9f:7f:f5:cb:5f:65:23:94:29:26:0a: eb:ff:96:d3:d9:15:8f:c3:d4:0d:bf:4f:d8:64:43: f3:9a:07:77:55:a8:54:5d:0c:1e:68:1d:71:13:da: b3:11:70:e7:e2:4f:58:7b:e1:7a:c3:a6:da:17:cd: 3e:aa:45:3a:e7:77:b3:5f:b4:87:6d:8c:a7:8e:81: e4:99:4c:aa:41:5c:dc:3f:12:a0:7a:aa:a6:e3:6b: a7:78:d2:a8:e7:c4:2f:a4:20:57:b4:78:b9:db:fd: 01:7f:b5:a0:00:9e:d9:48:ad:16:52:1a:48:5f:e0: 27:96:03:18:0f:10:7b:11:f1:5e:6d:bf:40:80:1e: c1:a8:0a:ef:22:c7:01:19:99:74:52:f2:3b:9e:f8: 12:ea:c6:8e:af:03:ba:52:c5:36:2a:06:ba:07:e2: ce:85:47:20:cf:72:56:ee:d8:b2:a8:96:fd:25:a9: 94:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E9:A3:08:95:4A:EC:24:EB:BE:B8:E0:29:88:78:A0:FB:E0:65:15 X509v3 Authority Key Identifier: keyid:FD:3B:4E:F8:F7:9B:0A:E1:27:E7:1E:4B:6C:18:69:D8:1B:22:E8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/1930A6C2DE1411EA9309134EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.45.4.0/23 IPv6: 2405:200:900::/40 Signature Algorithm: sha256WithRSAEncryption 43:65:96:19:35:ea:15:22:47:8b:0f:f1:ae:f7:ff:3e:28:de: 16:6f:53:53:a3:73:d7:b0:23:4d:79:b3:8b:6e:d7:d4:fe:e6: 29:20:3e:a9:5e:fd:b5:e5:c1:de:64:b3:31:b3:f7:23:23:5d: 33:c4:99:0b:ce:d2:63:d9:f3:e2:77:99:ec:a7:4a:7a:74:37: e2:e7:4a:af:83:1f:ae:f3:4e:28:cd:97:73:e4:b6:31:db:3d: c9:fe:f5:15:b2:6f:05:cc:92:f1:83:ac:60:e7:5b:36:6f:76: b0:27:7f:d2:0b:df:47:22:5a:df:41:f8:1c:9b:05:cf:83:49: f3:d8:9f:6f:69:00:be:c4:a1:c9:1a:6d:9b:ba:38:17:27:11: 3e:f0:26:58:2b:18:18:36:d6:83:5f:88:6a:f9:82:53:08:e8: 8a:43:42:e4:11:9a:0b:af:07:93:8c:19:e8:ac:27:db:d1:7a: 1d:d3:b9:e7:f7:6e:66:83:27:18:92:99:f9:b3:61:11:87:fe: 75:91:bd:ec:3c:66:5d:a6:85:67:41:e8:d4:c0:78:0a:68:fd: 57:84:0f:27:77:ac:af:c2:eb:27:28:d4:c2:91:c7:3a:45:61: 48:64:37:81:d7:aa:78:0f:a3:87:cd:87:40:47:8d:2e:fe:d2: 67:62:9f:57 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICEagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKEZEM0I0RUY4Rjc5QjBBRTEyN0U3MUU0QjZDMTg2OUQ4 MUIyMkU4ODAwHhcNMjUxMjAyMTg0OTUxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGRiYS03N2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdFEj00Smyof8wL2AFoCuO/Di5f/Ww4pDaIitKyuoQYH+8JbauM1PNDZDIgy Z/CgRW5AefJdZtdNffNsv+rul6wNNlxXpeUKSzmWW7Sdn3/1y19lI5QpJgrr/5bT 2RWPw9QNv0/YZEPzmgd3VahUXQweaB1xE9qzEXDn4k9Ye+F6w6baF80+qkU653ez X7SHbYynjoHkmUyqQVzcPxKgeqqm42uneNKo58QvpCBXtHi52/0Bf7WgAJ7ZSK0W UhpIX+AnlgMYDxB7EfFebb9AgB7BqArvIscBGZl0UvI7nvgS6saOrwO6UsU2Kga6 B+LOhUcgz3JW7tiyqJb9JamULQIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFF/powiV Suwk67644CmIeKD74GUVMB8GA1UdIwQYMBaAFP07Tvj3mwrhJ+ceS2wYadgbIuiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9FMUEzODRBQzMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9fVHRPLVBlYkN1RW41eDVMYkJocDJCc2k2 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19UdE8tUGViQ3VFbjV4NUxiQmhwMkJzaTZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIwRTAvRTFBMzg0QUMzMTBFMTFFQTlDM0NFNzJGQzRGOUFFMDIvMTkzMEE2QzJE RTE0MTFFQTkzMDkxMzRFQzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQBMS0EMA4EAgACMAgDBgAkBQIACTANBgkqhkiG9w0BAQsFAAOCAQEA Q2WWGTXqFSJHiw/xrvf/PijeFm9TU6Nz17AjTXmzi27X1P7mKSA+qV79teXB3mSz MbP3IyNdM8SZC87SY9nz4neZ7KdKenQ34udKr4MfrvNOKM2Xc+S2Mds9yf71FbJv BcyS8YOsYOdbNm92sCd/0gvfRyJa30H4HJsFz4NJ89ifb2kAvsShyRptm7o4FycR PvAmWCsYGDbWg1+IavmCUwjoikNC5BGaC68Hk4wZ6Kwn29F6HdO55/duZoMnGJKZ +bNhEYf+dZG97DxmXaaFZ0Ho1MB4Cmj9V4QPJ3esr8LrJyjUwpHHOkVhSGQ3gdeq eA+jh82HQEeNLv7SZ2KfVw== -----END CERTIFICATE-----Generated at Mon Mar 2 12:44:26 2026 by rpki-client